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FIG.1 



Certification Authority (CA) generates role certificate 
with permitted activity(ies) and optional identity of 

permitted third party(ies) (TPs) {Certificate signed by 
CA using CA private key}. Store role certificate in 

device memory or later transferred to device by TP. 
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Public key of CA (or hash value of public key) (corresponding to CA 
private key used to sign role certificate) stored In device in the 
tamper resistant memory 16'. 
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Fimriware 18 executed by CPU 14 In order to 
use CA public key to attempt to verify role certificate. 



No activities 
permitted 




No / Certificate "\ Yes 
verified? 



Parse pemiitted 
activity and identity 
of permitted TPs, 
if present. 
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No 



No pemiitted 
activities to be 

conducted on 
device by non- 
identified TP(s) 



""^^/^ If role certificate " 
"contains Identity of permitted^ 
TPs, determine if received identity 
'Infomnation (e.g., TP public key) from TP (via I/0 12) " 
matches (or can be transformed to match, e.g., via 
one -way hash) identity information 
concerning permitted TPs in 
role certificate. 
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FIG. 2 



Allow identified 
TP(s) to conduct 

pemiitted 
activlty(ies) on 
device 



